Out-of-Bounds Write Vulnerability in WinRAR 5.60 and Earlier Versions

Out-of-Bounds Write Vulnerability in WinRAR 5.60 and Earlier Versions

CVE-2018-20253 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

In WinRAR versions prior to and including 5.60, There is an out-of-bounds write vulnerability during parsing of a crafted LHA / LZH archive formats. Successful exploitation could lead to arbitrary code execution in the context of the current user.

Learn more about our User Device Pen Test.